Question 1

What type of policy should an administrator utilize to prevent the spread of malware through cloud applications?

Accepted Answer

A)  Access monitoring 
B)  File transfer 
C)  File sharing 
D)  Access enforcement 
A)  Access monitoring 
B)  File transfer 
C)  File sharing 
D)  Access enforcement

Question 2

If you have configured continuous uploading of access logs and the ProxySG is unable to reach the upload destination, what happens to the log entries?

Accepted Answer

A)  They are uploaded in real time to the backup upload destination configured in the Management Console 
B)  None of these answers 
C)  They are stored locally until the connection is re-established, and then they are uploaded 
D)  They are discarded 
A)  They are uploaded in real time to the backup upload destination configured in the Management Console 
B)  None of these answers 
C)  They are stored locally until the connection is re-established, and then they are uploaded 
D)  They are discarded

Question 3

Which services are included in the Intelligence Services Advanced Bundle?

Accepted Answer

A)  Content categories 
B)  Threat risk levels 
C)  All of these 
D)  Geolocation 
A)  Content categories 
B)  Threat risk levels 
C)  All of these 
D)  Geolocation

Question 4

How does the Securlet module get data?

Accepted Answer

A)  Firewall and proxies 
B)  CloudSOC gateway 
C)  Cloud application APIs 
D)  CloudSOC gateway and cloud application APIs 
A)  Firewall and proxies 
B)  CloudSOC gateway 
C)  Cloud application APIs 
D)  CloudSOC gateway and cloud application APIs

Question 5

What module can an administrator use to connect certain cloud applications to CloudSOC via APIs, and have complete visibility into the content being shared in those cloud applications?

Accepted Answer

A)  Investigate 
B)  Detect 
C)  Protect 
D)  Securlets 
A)  Investigate 
B)  Detect 
C)  Protect 
D)  Securlets

Question 6

Why is authentication using Basic credentials typically used over HTTPS?

Accepted Answer

A)  Username and password are base-64 encoded 
B)  No session identifier is required 
C)  No cookies are required 
D)  No other credentials are compatible with HTTPS 
A)  Username and password are base-64 encoded 
B)  No session identifier is required 
C)  No cookies are required 
D)  No other credentials are compatible with HTTPS

Question 7

What type of solution should an administrator implement to secure the way users interact with cloud applications?

Accepted Answer

A)  Intrusion Detection System/Intrusion Protection System (IDS/IPS) 
B)  Cloud Access Security Broker (CAS
B)  
C)  Web application firewalls 
D)  Proxies 
A)  Intrusion Detection System/Intrusion Protection System (IDS/IPS) 
B)  Cloud Access Security Broker (CAS
B)  
C)  Web application firewalls 
D)  Proxies

Question 8

Which deployment method represents a single point of failure?

Accepted Answer

A)  None of these answers 
B)  Inline XXX 
C)  Explicit 
D)  Transparent 
A)  None of these answers 
B)  Inline XXX 
C)  Explicit 
D)  Transparent

Question 9

When does the ProxySG establish an Schannel?

Accepted Answer

A)  When a client request is first received 
B)  When the client sends an NTLM type 2 message to ProxySG 
C)  When IWA authentication fails 
D)  When the client sends an NTLM type 3 message to the ProxySG 
A)  When a client request is first received 
B)  When the client sends an NTLM type 2 message to ProxySG 
C)  When IWA authentication fails 
D)  When the client sends an NTLM type 3 message to the ProxySG

Question 10

Refer to the exhibit. An administrator found this incident in the Investigate module. What type of policy should an administrator create to get email notifications if the incident happens again?

Accepted Answer

A)  File sharing policy 
B)  File transfer policy 
C)  Access monitoring policy 
D)  Data exposure policy 
A)  File sharing policy 
B)  File transfer policy 
C)  Access monitoring policy 
D)  Data exposure policy

Question 11

In which client connection type are user agents aware that a proxy has been deployed?

Accepted Answer

A)  Explicit proxy 
B)  In every connection type 
C)  Inline 
D)  Transparent 
A)  Explicit proxy 
B)  In every connection type 
C)  Inline 
D)  Transparent

Question 12

Where is the WebFilter database stored? (Select two)

Accepted Answer

A)  On clients' mobile devices 
B)  On a properly licensed ProxySG 
C)  At several data centers around the world 
D)  At third-party data centers 
A)  On clients' mobile devices 
B)  On a properly licensed ProxySG 
C)  At several data centers around the world 
D)  At third-party data centers

Question 13

In the Management Console, how can you determine the serial number of the ProxySG?

Accepted Answer

A)  Go to Configuration > Network 
B)  This information is not visible from the Management Console 
C)  The serial number is contained in the Management Console home link at top. 
D)  Go to Statistics > Advanced 
A)  Go to Configuration > Network 
B)  This information is not visible from the Management Console 
C)  The serial number is contained in the Management Console home link at top. 
D)  Go to Statistics > Advanced

Question 14

Which detector will trigger if CloudSOC detects anomalously frequent sharing?

Accepted Answer

A)  Behavior based 
B)  Threshold based 
C)  Sequence based 
D)  Threats based 
A)  Behavior based 
B)  Threshold based 
C)  Sequence based 
D)  Threats based

Question 15

What is the objective of the Access Enforcement policy?

Accepted Answer

A)  To notify an administrator when activities, such as objects being modified, are performed in a cloud application. 
B)  To restrict the direct sharing of documents from cloud applications based both on their content and the characteristics of the user. 
C)  To restrict the uploading and downloading of documents from the user's computer to the cloud application, based both on the content of the documents, and the characteristics of the user. 
D)  To restrict user access to cloud applications not based on content, but based on the user's characteristics, such as devices and locations. 
A)  To notify an administrator when activities, such as objects being modified, are performed in a cloud application. 
B)  To restrict the direct sharing of documents from cloud applications based both on their content and the characteristics of the user. 
C)  To restrict the uploading and downloading of documents from the user's computer to the cloud application, based both on the content of the documents, and the characteristics of the user. 
D)  To restrict user access to cloud applications not based on content, but based on the user's characteristics, such as devices and locations.

Question 16

How should an administrator handle a cloud application that fails to meet compliance requirements, but the business need outweighs the risk?

Accepted Answer

A)  Sanction 
B)  Monitor 
C)  Block 
D)  Review 
A)  Sanction 
B)  Monitor 
C)  Block 
D)  Review

Question 17

What stops further rule processing in a layer?

Accepted Answer

A)  When the final rule on the layer is reached 
B)  When two rules match 
C)  When a later rule contradicts an earlier rule 
D)  The first rule in the layer that matches 
A)  When the final rule on the layer is reached 
B)  When two rules match 
C)  When a later rule contradicts an earlier rule 
D)  The first rule in the layer that matches

Question 18

Refer to the exhibit. Which module(s) are utilized in the use case "Identify and understand how information is used within cloud applications"?

Accepted Answer

A)  Investigate 
B)  Securlets 
C)  Protect, Investigate, and Securlets 
D)  Detect, Protect, and Investigate 
A)  Investigate 
B)  Securlets 
C)  Protect, Investigate, and Securlets 
D)  Detect, Protect, and Investigate

Question 19

Which are three (3) levels of data exposure?

Accepted Answer

A)  Public, external, and internal 
B)  Public, confidential, and company confidential 
C)  Public, semi-private, and private 
D)  Public, confidential, and private 
A)  Public, external, and internal 
B)  Public, confidential, and company confidential 
C)  Public, semi-private, and private 
D)  Public, confidential, and private

Question 20

Name three methods by which client configuration can be performed in an explicit ProxySG deployment.

Accepted Answer

A)  Configure the user agent to point to the IP address or hostname of the ProxySG 
B)  Configure the user agent to point to the location of a PAC file 
C)  Configure the user agent to use WPAD 
D)  Use Symantec Management Center to configure the user agent 
E)  Configure forwarding hosts on the ProxySG 
A)  Configure the user agent to point to the IP address or hostname of the ProxySG 
B)  Configure the user agent to point to the location of a PAC file 
C)  Configure the user agent to use WPAD 
D)  Use Symantec Management Center to configure the user agent 
E)  Configure forwarding hosts on the ProxySG

What type of policy should an administrator utilize to prevent the spread of malware through cloud applications?

If you have configured continuous uploading of access logs and the ProxySG is unable to reach the upload destination, what happens to the log entries?

Which services are included in the Intelligence Services Advanced Bundle?

How does the Securlet module get data?

What module can an administrator use to connect certain cloud applications to CloudSOC via APIs, and have complete visibility into the content being shared in those cloud applications?

Why is authentication using Basic credentials typically used over HTTPS?

What type of solution should an administrator implement to secure the way users interact with cloud applications?

Which deployment method represents a single point of failure?

When does the ProxySG establish an Schannel?

Refer to the exhibit. An administrator found this incident in the Investigate module. What type of policy should an administrator create to get email notifications if the incident happens again?

In which client connection type are user agents aware that a proxy has been deployed?

Where is the WebFilter database stored? (Select two)

In the Management Console, how can you determine the serial number of the ProxySG?

Which detector will trigger if CloudSOC detects anomalously frequent sharing?

What is the objective of the Access Enforcement policy?

How should an administrator handle a cloud application that fails to meet compliance requirements, but the business need outweighs the risk?

What stops further rule processing in a layer?

Refer to the exhibit. Which module(s) are utilized in the use case "Identify and understand how information is used within cloud applications"?

Which are three (3) levels of data exposure?

Name three methods by which client configuration can be performed in an explicit ProxySG deployment.

Administration of Symantec Endpoint Protection 14 (Broadcom)

Administration of Symantec Email Security.cloud (v1)

Administration of Symantec ProxySG 6.7

Symantec Messaging Gateway 10.5 Technical Assessment (Broadcom)

Filters

Exam 3: Administration of Symantec Data Loss Prevention 12 (Broadcom)

What type of policy should an administrator utilize to prevent the spread of malware through cloud applications?

If you have configured continuous uploading of access logs and the ProxySG is unable to reach the upload destination, what happens to the log entries?

Which services are included in the Intelligence Services Advanced Bundle?

How does the Securlet module get data?

What module can an administrator use to connect certain cloud applications to CloudSOC via APIs, and have complete visibility into the content being shared in those cloud applications?

Why is authentication using Basic credentials typically used over HTTPS?

What type of solution should an administrator implement to secure the way users interact with cloud applications?

Which deployment method represents a single point of failure?

When does the ProxySG establish an Schannel?

Refer to the exhibit. An administrator found this incident in the Investigate module. What type of policy should an administrator create to get email notifications if the incident happens again?

In which client connection type are user agents aware that a proxy has been deployed?

Where is the WebFilter database stored? (Select two)

In the Management Console, how can you determine the serial number of the ProxySG?

Which detector will trigger if CloudSOC detects anomalously frequent sharing?

What is the objective of the Access Enforcement policy?

How should an administrator handle a cloud application that fails to meet compliance requirements, but the business need outweighs the risk?

What stops further rule processing in a layer?

Refer to the exhibit. Which module(s) are utilized in the use case "Identify and understand how information is used within cloud applications"?

Which are three (3) levels of data exposure?

Name three methods by which client configuration can be performed in an explicit ProxySG deployment.

Administration of Symantec Endpoint Protection 14 (Broadcom)

Administration of Symantec Email Security.cloud (v1)

Administration of Symantec ProxySG 6.7

Symantec Messaging Gateway 10.5 Technical Assessment (Broadcom)

Filters